getaddrinfo.c: GHOST vulnerability check

* ext/socket/getaddrinfo.c (get_addr): reject too long hostname to get rid of GHOST vulnerability on very old platforms. * ext/socket/raddrinfo.c (make_hostent_internal): ditto, paranoic check for the canonnical name. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49543 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: nobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2015-02-08 04:04:32 +0000
committer: nobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2015-02-08 04:04:32 +0000
commit: 1a18454da9bd4be564cf5df21dc2b53787527168 (patch)
tree: 64b545a2da4b286f8511444afef78dc89472a7bf /ext/socket/getaddrinfo.c
parent: a6516ff5f7f0daab88b44c64c8bd9dfa5317d6d0 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/ext/socket/getaddrinfo.c b/ext/socket/getaddrinfo.c
index a17d12b705..68f610e807 100644
--- a/ext/socket/getaddrinfo.c
+++ b/ext/socket/getaddrinfo.c
@@ -593,6 +593,7 @@ get_addr(const char *hostname, int af, struct addrinfo **res, struct addrinfo *p
 	} else
 		hp = getipnodebyname(hostname, af, AI_ADDRCONFIG, &h_error);
 #else
+	if (strlen(hostname) >= NI_MAXHOST) ERR(EAI_NODATA);
 	hp = gethostbyname((char*)hostname);
 	h_error = h_errno;
 #endif
author	nobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2015-02-08 04:04:32 +0000
committer	nobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2015-02-08 04:04:32 +0000
commit	1a18454da9bd4be564cf5df21dc2b53787527168 (patch)
tree	64b545a2da4b286f8511444afef78dc89472a7bf /ext/socket/getaddrinfo.c
parent	a6516ff5f7f0daab88b44c64c8bd9dfa5317d6d0 (diff)